-
-
Notifications
You must be signed in to change notification settings - Fork 3.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add support for Web Authentication API #17989
Add support for Web Authentication API #17989
Conversation
Codecov ReportBase: 47.73% // Head: 46.49% // Decreases project coverage by
Additional details and impacted files@@ Coverage Diff @@
## QA_5_2 #17989 +/- ##
============================================
- Coverage 47.73% 46.49% -1.24%
- Complexity 16825 16959 +134
============================================
Files 602 607 +5
Lines 71576 72313 +737
============================================
- Hits 34164 33624 -540
- Misses 37412 38689 +1277
Flags with carried forward coverage won't be shown. Click here to find out more.
Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. ☔ View full report at Codecov. |
This comment was marked as resolved.
This comment was marked as resolved.
476c4d5
to
608b24c
Compare
33f872d
to
81a0267
Compare
81a0267
to
5f7a3aa
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Can I test it once more ?
aab51ee
to
b0c5b36
Compare
@williamdes Could you test it? There are some things still missing that can be done in other pull requests:
|
With and without HTTPS on http://8.2.local/@phpmyadmin/phpMyAdmin-QA_5_2/index.php?route=/preferences/two-factor On click on the button below "Please connect your WebAuthn/FIDO2 device. Then confirm registration on the device." |
4a6aeee
to
c0b25b5
Compare
I'm not sure why this button is appearing to you, since it's getting hidden with JS, but I fixed the error message anyway. |
Now it is fixed (the error) but the button only appears when I am using HTTP now. So I can click it but at least it gives an consistent error each time. One last thing is to add the optional package to PACKAGE_LIST on create-release.sh and use the check release excludes script but nothing should show up |
Adds a two factor authentication plugin that supports FIDO2/WebAuthn security keys. Signed-off-by: Maurício Meneghini Fauth <mauricio@fauth.dev>
c0b25b5
to
f143d2a
Compare
The snapshot was re-built right now, thank you for your awesome work on this ! If possible an error should be show on chrome and not nothing when the user tries to login using the old U2F method ? |
Thank you!
This will done in another PR. |
Adds a two factor authentication plugin that supports FIDO2/WebAuthn security keys.
This pull request implements a custom WebAuthn server.
The WebAuthn server doesn't support attestation and some checks are still incomplete.
The CBOR decoder is not specification complete.
References: